Cloud-based lightweight secure RFID mutual authentication protocol in IoT

•This paper puts forward an efficient and reliable cloud-based RFID authentication scheme. In order to reduce the RFID tag's overhead, the proposed authentication scheme explores the rotation and enhanced permutation to encrypt data. The proposed protocol not only resists the above common attac...

Full description

Saved in:
Bibliographic Details
Published inInformation sciences Vol. 527; pp. 329 - 340
Main Authors Fan, Kai, Luo, Qi, Zhang, Kuan, Yang, Yintang
Format Journal Article
LanguageEnglish
Published Elsevier Inc 01.07.2020
Subjects
Internet of things
Lightweight
Mutual authentication
RFID
Security and privacy
Internet of things
Mutual authentication
RFID
Security and privacy
Lightweight
Online AccessGet full text

Cover

More Information
Summary:•This paper puts forward an efficient and reliable cloud-based RFID authentication scheme. In order to reduce the RFID tag's overhead, the proposed authentication scheme explores the rotation and enhanced permutation to encrypt data. The proposed protocol not only resists the above common attacks and protects the privacy of the tag, but also adds the cloud server to the RFID system. Performance simulation shows that permutation and rotation are efficient. Security analysis shows that our protocol can resist various attacks, such as tracking, replay, and desynchronization attack. Mutual authentication and backward security are also achieved. Finally, we apply BAN logic to prove the security of the protocol. Radio Frequency Identification (RFID) is a supporting technology for the Internet of things (IoT). RFID enables all physical devices to be connected to IoT. When RFID is widely used and developing rapidly, its security and privacy issues cannot be ignored. The wireless broadcast channel between the tag and the reader may be subject to many security attacks, such as interception, modification, and replay. Messages from unverified tags or readers are also untrustworthy. A secure and stable RFID authentication scheme is critical to IoT. This paper puts forward an efficient and reliable cloud-based RFID authentication scheme. In order to reduce the RFID tag's overhead, the proposed authentication scheme explores the rotation and enhanced permutation to encrypt data. The proposed protocol not only resists the above common attacks and protects the privacy of the tag, but also adds the cloud server to the RFID system. Performance simulation shows that permutation and rotation are efficient. Security analysis shows that our protocol can resist various attacks, such as tracking, replay, and desynchronization attack. Mutual authentication and backward security are also achieved. Finally, we apply BAN logic to prove the security of the protocol.
ISSN:0020-0255
1872-6291
DOI:10.1016/j.ins.2019.08.006